E3 Site Supervisor Control (firmware version < 2.31F01) RCI service contains an API call to read users info, which returns all usernames and password hashes for the application services.
Fixes

Solution

Upgrade firmware of affected E3 Supervisory Controls to a version > 2.30F1.


Workaround

Restrict access to the E3 Supervisory Controls network interface (ETH 0) by use of restricted VLAN or subnet and / or network firewall. Ensure the restricted VLAN or subnet is never accessible from untrusted networks.

History

Tue, 02 Sep 2025 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Tue, 02 Sep 2025 11:30:00 +0000

Type Values Removed Values Added
Description E3 Site Supervisor Control (firmware version < 2.31F01) RCI service contains an API call to read users info, which returns all usernames and password hashes for the application services.
Title Privilege escalation in the application services
Weaknesses CWE-522
References
Metrics cvssV4_0

{'score': 7.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:L/SA:L'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Armis

Published:

Updated: 2025-09-02T13:33:29.926Z

Reserved: 2025-06-17T17:29:21.841Z

Link: CVE-2025-52545

cve-icon Vulnrichment

Updated: 2025-09-02T13:33:25.499Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2025-09-02T12:15:36.860

Modified: 2025-09-02T15:55:25.420

Link: CVE-2025-52545

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.